Lucene search
K

21 matches found

Vulnrichment
Vulnrichment
added 2026/02/03 10:1 p.m.2 views

CVE-2020-37096 Edimax EW-7438RPn - Cross-Site Request Forgery (MAC Filtering)

Edimax EW-7438RPn 1.13 contains a cross-site request forgery vulnerability in the MAC filtering configuration interface. Attackers can craft malicious web pages to trick users into adding unauthorized MAC addresses to the device's filtering rules without their consent...

5.3CVSS5.2AI score0.00145EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-14743

Malware in sbrugna...

9.9CVSS9.1AI score0.05364EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-14742

Malware in sbrugna...

7.5CVSS7.7AI score0.02304EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-14746

Malware in sbrugna...

8.8CVSS8.7AI score0.05136EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-14767

Malware in sbrugna...

9.9CVSS9AI score0.02695EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-14747

Malware in sbrugna...

9CVSS7.2AI score0.06892EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-14753

Malware in sbrugna...

7.5CVSS7.7AI score0.02516EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18776

Malicious code in bioql PyPI...

9.4CVSS6.6AI score0.03859EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.16 views

CVE-2019-5139

An exploitable use of hard-coded credentials vulnerability exists in multiple iw utilities of the Moxa AWK-3131A firmware version 1.13. The device operating system contains an undocumented encryption password, allowing for the creation of custom diagnostic scripts...

7.1CVSS7AI score0.00337EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:57 p.m.14 views

CVE-2019-5138

An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted diagnostic script file can cause arbitrary busybox commands to be executed, resulting in remote control over the device. An attacker...

9.9CVSS7.4AI score0.05364EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:53 p.m.11 views

CVE-2019-5153

An exploitable remote code execution vulnerability exists in the iwwebs configuration parsing functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted user name entry can cause an overflow of an error message buffer, resulting in remote code execution. An attacker can send...

9.9CVSS8.1AI score0.04557EPSS
Exploits1References1
OSV
OSV
added 2020/02/25 4:15 p.m.4 views

CVE-2019-5137

The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13...

7.5CVSS7.1AI score0.02304EPSS
Exploits1References1
Prion
Prion
added 2020/02/25 4:15 p.m.14 views

Authentication flaw

An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device hostname can cause the device to interpret select remote traffic as local traffic, resulting in a bypass of web authentication. An attack...

6.5CVSS7AI score0.02233EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/02/25 4:15 p.m.18 views

Format string

An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...

6.5CVSS8.9AI score0.04652EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/02/25 4:15 p.m.22 views

Integer overflow

An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A specially crafted packet can cause an integer underflow, triggering a large memcpy that will access unmapped or out-of-bounds memory. An attacker can send this packe...

5CVSS7.5AI score0.02516EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/02/25 3:47 p.m.21 views

CVE-2019-5162

An exploitable improper access control vulnerability exists in the iwwebs account settings functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted user name entry can cause the overwrite of an existing user account password, resulting in remote shell access to the device as...

9.9CVSS8.7AI score0.02695EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.3 views

Moxa AWK-3131A Access Control Error Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. An access control error vulnerability exists in the 'iwconsole' function in the Moxa AWK-3131A using firmware version 1.13. An attacker can exploit this vulnerability to gain access to the system as root with the help of a menu selection strin...

9CVSS7.1AI score0.02479EPSS
Exploits4References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.11 views

Moxa AWK-3131A Authentication Bypass Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. A security vulnerability exists in the handling of host names in the Moxa AWK-3131A using firmware version 1.13. An attacker can exploit this vulnerability to bypass authentication by sending an authenticated SNMP request...

8CVSS6.9AI score0.02233EPSS
Exploits1References1
Talos
Talos
added 2020/02/24 12:0 a.m.67 views

Moxa AWK-3131A iw_console conio_writestr Remote Code Execution Vulnerability

Summary An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send...

8.8CVSS9.2AI score0.04652EPSS
Exploits1
Talos
Talos
added 2020/02/24 12:0 a.m.67 views

Moxa AWK-3131A iw_console Privilege Escalation Vulnerability

Summary An exploitable privilege escalation vulnerability exists in the iwconsole functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted menu selection string can cause an escape from the restricted console, resulting in system access as the root user. An attacker can send...

9CVSS9AI score0.02479EPSS
Exploits4
Rows per page
Query Builder